Azure/365 Engineer (IdAM & Policy) - TS/SCI with Polygraph with Security Clearance

---

Job description

REQ#: RQ183864 Public Trust: None Requisition Type: Regular Your Impact Own your opportunity to serve as a critical component of our nation's safety and security. Make an impact by using your expertise to protect our country from threats. Job Description Systems Engineer Sr Advisor We are seeking a highly motivated engineer with a thirst for learning, in support of geographically dispersed, state of the art systems built on a foundation of Microsoft services. Candidates with proven depth creating solutions on-premises, and in the cloud, will be positioned for success in our organization. Proven experience with the design, deployment and management of Microsoft cloud solutions would be a differentiator. Additionally, engineers will build, maintain, and migrate large scale multi-domain enterprise Windows Server environments to both on-premises, cloud, or hybrid infrastructures including Azure/M365. Candidates with an existing TS clearance are preferred but consideration will be given to uncleared candidates willing to support an Azure IL4/IL5 and M365 deployment/migration while working to acquire their security clearance. Engineers will provide support to multiple globally dispersed WAN connected sites. Embracing the DevOps model, engineers will be responsible for supporting their solutions throughout the entire IT project lifecycle, to include refining requirements, creating design documentation, creating installation instructions and deployment plans, and providing O&M support. Project assignments will vary based on skill level, and may include engineering geographically dispersed services, integrating services into public, private and hybrid cloud environments, engineering solutions to be deployed via automated CM tools, and hardening the solutions to address security, compliance and regulatory initiatives. Responsibilities: Plans and directs Azure/M365 policy and identity management related components, services and application integration
Designs and defines system architecture for new or existing computer systems utilizing both on-premises, cloud-based and hybrid hosting technologies and solutions
Analyze requirements and system architectures to refine system requirements, specifications and resulting design plans
Administer, operate, manage, and maintain components for on-premises and cloud-based environments and systems
Reviews completion and implementation of system configurations and/or enhancements and makes recommendations to management and/or clients Required Skills: Strong understanding or direct experience with onboarding and operating within Azure and M365 environments
Strong understanding and experience with the designing, engineering, administering and operating Azure Active Directory/Entra ID based identity and access management solutions and authentication services and Single Sign On (SOO) solutions such as ADFS, Ping Federate, Okta or other SAML or OAuth technologies/solutions
Develop solutions integrating Microsoft Azure commercial clouds (public and government community) with services hosted on-premises and in other clouds
Understanding of Hybrid Identities, Azure Active Directory Connector (AADC)/ Entra Connect and/or other Identity Management or synchronization technologies like Microsoft Identity Manager (MIM), Okta, etc.
Architectural understanding of M365 security constructs and data protections such as Purview, DLP, RMS/IRM, Azure Information Protection
Experience with Multi Factor Authentication (MFA) and Public Key Infrastructure (PKI)
Experience managing and implementing Azure Policy and Management Group hierarchy for resource governance and compliance management
Experience managing Azure/M365 using PowerShell and Microsoft Graph
Experience with Active Directory design, topology, and implementation best practices
Experience with Group Policy Objects and management
Experience with Windows DNS and DHCP
Experience with Windows Server 2019 and 2022
Experience with File and Storage Services, to include Distributed File System (DFS), including Namespace, Target and Replication management
Experience with Microsoft Windows automation scripting with PowerShell or other scripting languages
System configuration based on security guidelines such as DISA STIGs, CIS or Azure Security Benchmarks
CompTIA Security+ or similar for IAT Level II DoD 8570 certification
Location: On Customer Site
US Citizenship Required GDIT IS YOUR PLACE: 401K with company match
Comprehensive health and wellness packages
Internal mobility team dedicated to helping you own your career
Professional growth opportunities including paid education and certifications
Cutting-edge technology you can learn from
Rest and recharge with paid vacation and holidays Work Requirements .cls-1 fill:none;stroke:;stroke-miterlimit:10;stroke-width:2px Years of Experience 10 + years of related experience may vary based on technical training, certification(s), or degree .cls-2 fill:none;stroke:;stroke-miterlimit:10;stroke-width:2px Certification Travel Required None .cls-3 fill:none;stroke:;stroke-miterlimit:10 Citizenship U.S. Citizenship Required Salary and Benefit Information The likely salary range for this position is $134,597 - $172,500. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range. View information about benefits and our total rewards program. About Our Work We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 30 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology. GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.

<!– job description page –>